The PKCS#11 interface for the Smart Card contains enough functions if a smart card is used on one PC. Usually there are some problems with smart cards which are not used on one PC, because the user is not able to install the PKCS#11 drivers on another PC where the PC is in the user mode and the administrator mode is not permitted for basic PC users like officers or Internet cafe visitors.
The profile of PKCS#15 which is defined in EU Norm EN 14890 (CWA 14890) Application Interface for smart cards used as Secure Signature Creation Devices - Part 1: Basic services is a perfect way in which the application is able to communicate uniquely with any smart card which has implemented APDU according to this PKCS#15 profile. It will be used in national eID cards and eHealth cards or corporate multipurpose cards.
http://www.cen.eu/cen/Sectors/Sectors...tures.aspxThe PKCS#15 can also contains a secure store of trusted Root certificates what can be used in applications for simplification of PKI for basic users, because in verification process the holder of a smartcard is usually non IT expert and the application can decide automatically which root is trusted for the holder of a card without any problems.
Presently the users of systems where the secure store of root certificates in PKCS#15 is not implemented are puzzled with very strange question like: is this ... (root certificate) trusted?If you like the idea, vote for it on http://www.eldos.com/sbb/wishlist.php

We use cookies to help provide you with the best possible online experience. By using this site, you agree that we may store and access cookies on your device. You can find out more about and set your own preferences here.